Fail-Safe: Securing Cyber-Physical Systems against Hidden Sensor Attacks

Mengyu Liu, Lin Zhang, Pengyuan Lu, Kaustubh Sridhar, Fanxin Kong, Oleg Sokolsky, Insup Lee

Research output: Chapter in Book/Entry/PoemConference contribution

13 Scopus citations

Abstract

In Cyber-Physical Systems (CPS), integrating new technologies that interact with and control physical systems raises new security risks beyond the classical cyber security domain. These risks motivated many attack detectors that focus on the binary outcome. However, one pressing risk in CPS is hidden sensor attacks that are well-designed by powerful attackers who gained full knowledge of our systems and detector. The hidden attacks inject such a small malicious signal into sensor measurement that they can stay undetected but eventually lead to a significant deviation. Thus, to secure the CPS, we propose a detection framework to identify these sensor attacks that can drive the system's physical states to an unsafe state within a given period, even if they are not detected. First, we solve optimization problems to find the optimal hidden sensor attack that leads to the minimal distance to a pre-defined unsafe state region within an observation window for a given system and detector. Then, based on this algorithm, we perform offline profiling to search for a conditionally safe region, where the system states are guaranteed to be safe within the observation window as long as the detector does not raise any alerts. Finally, the framework can online discover potential hidden sensor attacks that endanger the system by checking if the current system state moves out of the region and raising a yellow alert. The evaluation shows that the optimal hidden sensor attack results in the minimum distance to unsafe, within a given observation window among existing hidden sensor attacks. We implemented our method on four linear simulators to show the effectiveness of our method. Additionally, we provided a discussion on the challenges of applying the proposed method to non-linear systems.

Original languageEnglish (US)
Title of host publicationProceeding - 43rd IEEE Real-Time Systems Symposium, RTSS 2022
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages240-252
Number of pages13
ISBN (Electronic)9781665453462
DOIs
StatePublished - 2022
Event43rd IEEE Real-Time Systems Symposium, RTSS 2022 - Houston, United States
Duration: Dec 5 2022Dec 8 2022

Publication series

NameProceedings - Real-Time Systems Symposium
Volume2022-December
ISSN (Print)1052-8725

Conference

Conference43rd IEEE Real-Time Systems Symposium, RTSS 2022
Country/TerritoryUnited States
CityHouston
Period12/5/2212/8/22

Keywords

  • cyber-physical systems
  • detection
  • hidden sensor attack

ASJC Scopus subject areas

  • Software
  • Hardware and Architecture
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'Fail-Safe: Securing Cyber-Physical Systems against Hidden Sensor Attacks'. Together they form a unique fingerprint.

Cite this